Обзор уязвимостей в мире WordPress за январь 2021 года
Обзор любезно предоставлен сервисом WPScan, за что им отдельное спасибо.
Уязвимые плагины под WordPress
- Modern Events Calendar Lite < 5.16.6 — Authenticated SQL Injection
- Modern Events Calendar Lite < 5.16.5 — Authenticated Arbitrary File Upload leading to RCE
- Modern Events Calendar Lite < 5.16.5 — Unauthenticated Events Export
- Modern Events Calendar Lite < 5.16.5 — Authenticated Stored Cross-Site Scripting (XSS)
- Super Forms <= 4.9.602 — Unauthenticated PHP4 File Upload to RCE
- uListing < 1.7 — Unauthenticated Arbitrary Post/Page Deletion
- uListing < 1.7 — Unauthenticated SQL Injections
- uListing < 1.7 — Unauthenticated Arbitrary Roles and Capabilities Creation/Deletion
- uListing < 1.7 — Unauthenticated Information Disclosure
- uListing < 1.7 — Unauthenticated WordPress Options Change
- uListing < 1.7 — Unauthenticated Arbitrary Account Change
- uListing < 1.7 — Unauthenticated Arbitrary Account Creation
- Contact Form 7 Database Addon < 1.2.5.6 — CSV Injection
- Doneren met Mollie < 2.8.5 — Unauthorised CSV Export leading to Sensitive Data Disclosure
- Contact Form 7 Database Addon < 1.2.5.4 — Authenticated SQL Injections
- Digital Climate Strike WP <= 1.0.0 — Redirect to Malicious Website due to Compromised JS Asset
- Under Construction < 3.86 — Authenticated Stored Cross-Site Scripting (XSS)
- Stockdio Historical Chart < 2.8.1 — Reflected Cross-Site Scripting (XSS)
- 123ContactForm for WordPress <= 1.5.6 — Unauthenticated Arbitrary File Upload
- 123ContactForm for WordPress <= 1.5.6 — Unauthenticated Arbitrary Post Creation
- 123ContactForm for WordPress <= 1.5.6 — Validation Bypass via Plugin Verification
- e-signature < 1.5.6.8 — Unauthenticated Arbitrary File Upload leading to RCE
- WP Shieldon 1.6.3 — Unauthenticated Cross-Site Scripting (XSS)
- 301 Redirects — Easy Redirect Manager < 2.51 — Authenticated SQL Injection
- Simple Job Board < 2.9.4 — Authenticated Path Traversal Leading to Arbitrary File Download
- FV Flowplayer Video Player < 7.4.38.727 — Authenticated Stored Cross-Site Scripting (XSS)
- Easy Contact Form Pro < 1.1.1.9 — Authenticated Stored Cross-Site Scripting (XSS)
- Elementor Contact Form DB < 1.6 — Unauthenticated & Unauthorised Form Submissions Export
- Elementor Contact Form DB < 1.6 — Plugin Settings Cross-Site Request Forgery
- Orbit Fox by ThemeIsle < 2.10.3 — Authenticated Privilege Escalation
- Orbit Fox by ThemeIsle < 2.10.3 — Authenticated Stored Cross Site Scripting
- WP Quick FrontEnd Editor <= 5.5 — Authenticated Settings Change leading to Stored XSS
- WP Quick FrontEnd Editor <= 5.5 — Authenticated Content Injection
- Custom Global Variables <= 1.0.5 — Stored Cross-Site Scripting (XSS)
- Modal Survey < 2.0.1.8.2 — Authenticated PHP Object Injection
- Modal Survey < 2.0.1.8.2 — Unauthenticated Arbitrary Survey Update, Deletion and Creation
- Modal Survey < 2.0.1.8.2 — Authenticated Reflected Cross-Site Scripting (XSS)
- WP24 Domain Check < 1.6.3 — Authenticated Stored Cross-Site Scripting (XSS)
- Advanced Custom Fields < 5.8.12 — Cross-Site Scripting in Select2 dropdowns
- Elementor < 3.0.14 — SVG Upload Allowed by Default
- Stripe Payments < 2.0.40 — Authenticated Stored Cross-Site Scripting (XSS)
- WP Paginate < 2.1.4 — Authenticated Stored Cross-Site Scripting (XSS)
- Contact Form Submissions <= 1.6.4 — Authenticated SQL Injection
- Contact Form Submissions <= 1.6.4 — Authenticated Double Query SQL injection